[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Minutes for 7 April 2011 TC Meeting
Time: 13:00 EDT
Tel: 513-241-0892 Access Code: 65998
Minutes for 7 April 2011 TC Meeting:
I. Roll Call & Approve Minutes:
Roll call:
Voting Members
Erik Rissanen Axiomatics AB
Abbie Barbir Bank of America
Paul Tyson Bell Helicopter Textron Inc.
Gregory Neven IBM
Franz-Stefan Preiss IBM
Anthony Nadalin Microsoft Corporation
Rich Levinson Oracle Corporation
Hal Lockhart Oracle Corporation
John Tolbert The Boeing Company
John Davis Veterans Health Administration
David Staggs Veterans Health Administration
Members
Remon Sinnema EMC Corporation
Jan Herrmann Individual
Approve Minutes: 24 March 2011 TC Meeting Minutes - UPDATED(2):
http://lists.oasis-open.org/archives/xacml/201103/msg00056.html
hal: no obj to unan consent: approved
II. Administrivia
New: "OASIS IDtrust Member Section to host IIW - 3-5 May 2011":
dee: http://lists.oasis-open.org/archives/xacml/201103/msg00057.html
hal: mentioned
Ongoing: F2F Planning Update
tony: http://lists.oasis-open.org/archives/xacml/201103/msg00006.html
status:
3/24: hal: f2f action on chairs to look for proposals
hal: people are posting to poll, ny, wash dc, boston
(looking to east coast, last was west, offers exist)
Ongoing: OASIS XACML Webinar: OASIS asks is there interest to develop?
bill: http://lists.oasis-open.org/archives/xacml/201103/msg00034.html
status:
3/24: Erik, Doron, Hal volunteered to work on it.
hal: looking at webinar in May
Ongoing: "ITU-T Files of Interest":
hal: http://lists.oasis-open.org/archives/xacml/201103/msg00001.html
status:
3/24: abbie: apr 11-20 group 17 mtg; next update will be after that.
4/7: abbie: docs have been submitted, he will be attending mtg,
"all taken care of"
III. Issues
New: "The known issues in XACML 3.0 CS 01":
erik: http://lists.oasis-open.org/archives/xacml/201103/msg00054.html
comments:
bill: http://lists.oasis-open.org/archives/xacml/201103/msg00055.html
erik: all are in wiki page for viewing;
hal: bill and hal think a new cs is appropriate; get wkg drafts,
go to 15-day pub rev, would still be 3.0; cs reps pre-impl stage,
expect some chgs before OS.
erik: 2 concerns: would like weekly mtgs because there are so many
detailed steps; would encourage more discussion in advance;
things will be continuing;
erik: proposes going weekly until next CS.
tony: short notice for next week
erik: agrees: start weekly after next mtg in 2 wks; want to have
comments on wiki:
1. accept as proposed (erik: www moving away from "duration",
so difficult to mix months in for duration for some
data types)
2. chg schema as proposed; loosely defined in xml sch
3. ldap not x500 coding; agree to add sample, but no fix reqd
4. both english and haskell, in one case don't match, english
appears to be correct (carried over from 2.0); related
issue, prev f2f, didn't update haskell to more general,
removed the haskell; some of haskell defns ref the
haskell defns removed in 3.0, so incomplete; shouldn't
be 2 defns of same thing; erik: english is generally
the correct defn; for higher order suggest using only
english; jan: not sure if such defns can be done in
haskell, recommends english; erik will review english
and remove the haskell;
5. has been removed as not a problem
6. if target indet, results of com-alg determines result; point
is that new algs track possible results if not an error;
that info kept as policy eval'd upwards; if target of
policy uses ext-alg, what value does whole policy get,
what type of ind, comb alg should be eval'd and final
result would be from the comb alg. already well-defined
for rules, only impacts policy, policysets;
erik will draft proposed wording
7. english is wrong, schema is correct, carryover from xacml 1.0,
chg would be to remove condition from expression
8. obligations: interpretations; greg: if you look at in detail,
it actually appears correct; erik: can tweak language if
still confusing. greg: not strictly wrong, but confusing.
erik will look at greg's proposal
9. erik: there are no accepted defns for what these "is-in" fcns
mean for ip-addr or dns-name; erik: issue is equality
not well defined; paul: wants to take closer look.
10. erik: embarrassing: "subtraction" defn may be ambiguous; will
look closer.
11. erik: fcns convert things to strings: output from these fcns
may not be definitive; need a canonical form; not sure how
big a concern it is; hal: should suggest not converting
to string then comparing the results; erik: either say
it can't be relied on, or do what xml schema says;
erik: for those types where well-defined conversions
exist use those, ow make stmt indicating situation.
x. tony: believes text and example are in conflict in sec 7.7.
hal: msg 8 in April; tony: in sec 4.2.4.4 mismatch
see post. paul: target is conjunctive list of disjunctive
lists, so should study more to determine what is correct.
hal: discussion should go on list; rich: need to look
further before deciding what is default action based
on proposal.
-. jan's latest missing attr issue will be put in post-3.0 bin
New: "usage of status:missing-attribute in case of an AttributeSelector
- control of the pip through xacml rules"
jan: http://lists.oasis-open.org/archives/xacml/201103/msg00059.html
comments:
paul: http://lists.oasis-open.org/archives/xacml/201103/msg00060.html
erik: http://lists.oasis-open.org/archives/xacml/201104/msg00002.html
jan: http://lists.oasis-open.org/archives/xacml/201104/msg00003.html
New: ""Web Friendly" Policy Ids":
hal: http://lists.oasis-open.org/archives/xacml/201103/msg00044.html
comments:
paul: http://lists.oasis-open.org/archives/xacml/201103/msg00046.html
New: "Comments on Attribute predicate profile for SAML and XACML":
paul: http://lists.oasis-open.org/archives/xacml/201103/msg00050.html
comments:
greg: http://lists.oasis-open.org/archives/xacml/201104/msg00004.html
paul: http://lists.oasis-open.org/archives/xacml/201104/msg00005.html
remon: http://lists.oasis-open.org/archives/xacml/201104/msg00006.html
refs:
greg: original posting of profile: March 23, 2011:
http://lists.oasis-open.org/archives/xacml/201103/msg00035.html
original (Paul from november 2010):
http://lists.oasis-open.org/archives/xacml/201010/msg00012.html
greg: paul's email query for attr predicate, agrees w comments, if
can't get attr from pip, will do attr pred query; at that point
not clear what apply stmt to use?
paul: there is issue w how pdp is impl'd, no profile to be defined,
possibly a small profile saying this is impl option. greg:
how high up in tree to go is ambiguous.
hal: time has expired for meeting;
hal: will try to get draft for cd vote for apr 21, then go to weekly
mtgs for pub rev etc.
hal: mtg adjourned 2:03 pm
Ongoing: "Obligations problem":
greg: http://lists.oasis-open.org/archives/xacml/201103/msg00037.html
comments:
erik: http://lists.oasis-open.org/archives/xacml/201103/msg00053.html
Ongoing: Specifying a specific associated Resource in a Policy (Sticky Policies):
hal: http://lists.oasis-open.org/archives/xacml/201103/msg00012.html
Ongoing: BTG Profile (Break The Glass):
several recent comments (only listed most recent from each named member):
david-c: http://lists.oasis-open.org/archives/xacml/201103/msg00014.html
mike: http://lists.oasis-open.org/archives/xacml/201103/msg00021.html
erik: http://lists.oasis-open.org/archives/xacml/201103/msg00024.html
doron: http://lists.oasis-open.org/archives/xacml/201103/msg00027.html
martin: http://lists.oasis-open.org/archives/xacml/201103/msg00028.html
bill: http://lists.oasis-open.org/archives/xacml/201103/msg00029.html
paul: http://lists.oasis-open.org/archives/xacml/201103/msg00030.html
david-s: http://lists.oasis-open.org/archives/xacml/201103/msg00032.html
rich: http://lists.oasis-open.org/archives/xacml/201103/msg00033.html
original (David C): http://lists.oasis-open.org/archives/xacml/201011/msg00017.html
Ongoing: PIP directive (additional information directives)
original (David): http://lists.oasis-open.org/archives/xacml/201010/msg00005.html
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]